Komplex

MITRE

Malware Type:
Other

First seen:
Unknown

Last seen:
Unknown

Details:

[Komplex](https://attack.mitre.org/software/S0162) is a backdoor that has been used by [APT28](https://attack.mitre.org/groups/G0007) on OS X and appears to be developed in a similar manner to [XAgentOSX](https://attack.mitre.org/software/S0161) (Citation: XAgentOSX 2017) (Citation: Sofacy Komplex Trojan).

Associated Techniques (7)

ID	ATT&CK	Tactics
T1033	System Owner/User Discovery	-
T1057	Process Discovery	-
T1070.004	File Deletion	-
T1071.001	Web Protocols	-
T1543.001	Launch Agent	-
T1564.001	Hidden Files and Directories	-
T1573.001	Symmetric Cryptography	-

Used by Actors (1)

APT28
Nation-state

Metadata

ID:	655
Created:	13/01/2026 17:48
Updated:	06/03/2026 16:00